Firewall question...

[Subsonic]

I've tried two free firewalls for Windows7. Windows7 Firewall Control and Privatefirewall 6.1. When I do a Shields up scan with Gibson (www.grc.com), both of these report that port 23 (telnet) is open. Is this normal? I have'nt used it for a long time, but if I remember correctly, when I used Zone Alarm pro with XP, GRC would report true stealth on all ports.

 

[multibot]

can you explain your problem with some more details and may i know the reason for using such external firewalls while 7's FW is quite strong n AVG's is the best i think.



plz reply

 

[TGSoldier]

I believe port 23 is for telnet.

Edit..

Google just confirmed that port 23 is for telnet. So no worries there for you

 

[zigzag3143]

I've tried two free firewalls for Windows7. Windows7 Firewall Control and Privatefirewall 6.1. When I do a Shields up scan with Gibson (www.grc.com), both of these report that port 23 (telnet) is open. Is this normal? I have'nt used it for a long time, but if I remember correctly, when I used Zone Alarm pro with XP, GRC would report true stealth on all ports.

Telnet should definately not be open. its one of the easiest way to gain access to a remote computer. All you have to do is type "helo" and it will tell you abt the system.

ZAP, ESET, both stealth all ports on GRC. You have a realtime virus checker runnning?

Ken

 

[TGSoldier]

Telnet should definately not be open. its one of the easiest way to gain access to a remote computer.

You lost me a bit here zig.. >.<

Do you mean to say that the avg user should not have it open?

 

[Subsonic]

can you explain your problem with some more details and may i know the reason for using such external firewalls while 7's FW is quite strong n AVG's is the best i think.

plz reply

I thought 7's FW was quite adequate as well. I use Windows7 Firewall control along with 7's FW as its built to be compatible and eases the set up of the 7 FW. But I was VERY surprised to see GRC say that port 23 was open even with the 7 FW running. I don't think that's good. I may go back and try ZA free since the newest version seems to indicate that it plays nicely with Windows 7.

 

[Tews]

I agree with Ken on this one... its like hanging a neon sign on your front door.. "Not home .. Come on in" I use MSE and score a True Stealth on GRC.com btw..

 

[zigzag3143]

No reason to have it open. Its not even included in the OS anymore. telnet is a bi-directional com that is easily hackable. Google it and hacking and you'll you see. We make sure FTP is closed, and you wouldn't think of leaving remote desktop without a password so too with telnet.

Ken

 

[Subsonic]

ZAP, ESET, both stealth all ports on GRC. You have a realtime virus checker runnning?

Ken

Hi Ken!

I'm using MSE currently (although there is a new beta version of AVAST 5 that has come out that looks like it fixes alot of problems with the first beta that I might try). I was toying with giving Norton Internet Secuity 9 a go (something I didn't think you'd ever see me say after all the days of Symantec "bloatware") but they want $60 for it and I HATE having to pay for a AV/FW YEARLY! May give ZA free a go.

 

[masterB]

If you want to have real protection(firewall in this case) you need to use a paid software, not the free ones or worse Windows firewall.

 

[TheIgster]

Interesting (grc.com). I tried ShieldsUP! With or without ThreatFire enabled, ESET Smart Security passed all of the tests and was in true stealth mode.

I then downloaded and ran LeakTest.exe. With ThreatFire running, TF blocked it and allowed me to even kill the process and quarantine it. ESS didn't do anything and completely allowed it through with TF suspended for testing purposes. :shock:

 

[Barman58]

I use Comodo Firewall and have just retested this new install (Official RTM) 100% pass In and Out with comments such as this ...

[FONT=Verdana,Arial,Helvetica,Sans-Serif,MS Sans Serif][SIZE=+0]Your Internet port 139 does not appear to exist!
[SIZE=-1]One or more ports on this system are operating in FULL STEALTH MODE! Standard Internet behavior requires port connection attempts to be answered with a success or refusal response. Therefore, only an attempt to connect to a nonexistent computer results in no response of either kind. But YOUR computer has DELIBERATELY CHOSEN NOT TO RESPOND (that's very cool!) which represents advanced computer and port stealthing capabilities. A machine configured in this fashion is well hardened to Internet NetBIOS attack and intrusion.
[/SIZE][/SIZE][/FONT]

[FONT=Verdana,Arial,Helvetica,Sans-Serif,MS Sans Serif][SIZE=+0]Unable to connect with NetBIOS to your computer.
[SIZE=-1]All attempts to get any information from your computer have FAILED. (This is very uncommon for a Windows networking-based PC.) Relative to vulnerabilities from Windows networking, this computer appears to be VERY SECURE since it is NOT exposing ANY of its internal NetBIOS networking protocol over the Internet.[/SIZE][/SIZE][/FONT]

I do get one fail that i expect I have the Ping port open at the moment on the Router

The price for this type of security FREE

AntiVirus and SSL Certificates - Internet Security Software | Comodo if you want to try it yourself

 

[pparks1]

If you want to have real protection(firewall in this case) you need to use a paid software, not the free ones or worse Windows firewall.

I don't agree with anything in this statement. I think there are plenty of free alternatives that can do just fine. A lot really depends upon what you do on your computer and the types of sites that you are likely to visit.

 

[Dark Nova Gamer]

I use Comodo Firewall and have just retested this new install (Official RTM) 100% pass In and Out with comments such as this ...

I do get one fail that i expect I have the Ping port open at the moment on the Router

The price for this type of security FREE

AntiVirus and SSL Certificates - Internet Security Software | Comodo if you want to try it yourself

I use MSE, my computer had the same results AND passed other things on that site. I have yet to fail anything on it.

 

[Subsonic]

I use MSE, my computer had the same results AND passed other things on that site. I have yet to fail anything on it.

This is interesting. I had latest version of MSE installed and running when I failed with Port 23 open. I wonder if its your router that blocks the port. I'm currently in a hotel using their wireless when I get the port 23 open on grc. I'm trying a couple of other AV/FW combos now. Results soon...

 

[Dark Nova Gamer]

This is interesting. I had latest version of MSE installed and running when I failed with Port 23 open. I wonder if its your router that blocks the port. I'm currently in a hotel using their wireless when I get the port 23 open on grc. I'm trying a couple of other AV/FW combos now. Results soon...

The router is unsecured, I currently have a 1 bar signal @ 11mbps, its a WRT54GS Linksys Router.

=)

 

[masterB]

... A lot really depends upon what you do on your computer and the types of sites that you are likely to visit.

That's right! I go to very bad sites.

The only free one I trust is Comodo Firewall. But atm I use KIS 2010.

As I sad free is not always a good option.

If you need a good one check this tests on firewall:

Results and comments - www.matousec.com

 

[Crypto]

Hey, I just ran that test Yesterday . Im used MSE and it passed. Then tried LeakTest and it said my Firewall has been penetrated without my knowledge. So seems like my Windows Firewall is not working properly.

Then I installed Comodo, and now it says im fine. Its a bit anoying when a program runs at first as many popups come but its better than getting my wall penetrated

Now Im getting these with MSE and Comodo.

​

 

[Subsonic]

Maybe I'm chasing a non-existant problem...

I just did the port test using PC Flank. When it runs, it tells me:

IP Address test

​

The test has determined your IP address to be:
24.218.10.214

But here is what my ipconfig reports:

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Link-local IPv6 Address . . . . . : fe80::3b:db7c:a6e1:fa83%12
IPv4 Address. . . . . . . . . . . : 192.168.4.249
Subnet Mask . . . . . . . . . . . : 255.255.255.255
Default Gateway . . . . . . . . . : 192.168.4.1

So I believe that these test are only reporting the port status of the router that this hotel is using and not my actual status. I will check when I connect to a different hotels wireless later today.

​

 

[Creer]

That's right! I go to very bad sites.

The only free one I trust is Comodo Firewall. But atm I use KIS 2010.

As I sad free is not always a good option.

If you need a good one check this tests on firewall:

Results and comments - www.matousec.com

Hi,

first of all I have to clarify one thing - Matousec doesn't test ONLY firewalls.
His test testing mainly HIPS protection or other kernel vulnerable parts of OS, eg. BsodHook or Security Software Testing Suite package (SSTS)

So please do not recommend to others firewall reference only on Matousec test methodology, because it is not Firewall test but "Proactive Security Challenge" and in this test eg. very good firewall (Look'n'Stop is on the end of the list, because this is pure firewall without HIPS module)

Cheers,
Creer